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INTERNET SERVER ACCESS CONTROL AND MOWTTQRING SYSTEMS 

Reference t:o App end iv 

A portion of the disclosure of this patent document 
contains material which is subject to copyright protection. 
5 The copyright owner Tias no objection to the facsimile 
reproduction by any one of the patent disclosure, as it 
appears in the Patent and Trademark Office patent files or 
records, but otherwise reserves all copyright rights 
whatsoever* 

10 Background of the Invention 

The Internet, which started in the late 1960s, is a 
vast computer network consisting of many smaller networks 
that span the entire globe. The Internet has grown 
exponentially, and millions of users ranging from 

15 individuals to corporations now use permanent and dial-up 
connections to use the Internet on a daily basis worldwide. 
The computers or networks of computers connected within the 
Internet, known as "hosts", allow public access to 
databases featuring information in nearly every field of 

20 expertise and are supported by entities ranging from 
universities and government to many commercial 
organizations . 

The information on the Internet is made available to 
the public through "servers". A server is a system running 

25 on an Internet host for making available files or documents 
contained within that host. Such files are typically 
stored on magnetic storage devices, such as tape drives or 
fixed disks, local to the host. An Internet server may 
distribute information to any computer that requests the 

3 0 files on a host. The computer making such a request is 
known as the "client", which may be an Internet-connected 
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workstation, bulletin board system or home personal 
computer (PC) . 

TCP/IP (Transmission Control Protocol /Internet 
Protocol) is one networking protocol that permits full use 
of the Internet. All computers on a TCP/IP network need 
unique ID codes. Therefore, each computer or host on the 
internet is identified by a unique number code, known as 
the IP (internet Protocol) number or address, and 
corresponding network and computer names. m the past, an 
Internet user gained access to its resources only by 
identifying the host computer and a path through 
directories within the host's storage to locate a requested 
file. Although various navigating tools have helped users 
to search resources on the Internet without knowing 
specific host addresses, these tools still require a 
substantial technical knowledge of the Internet. 

The World-Wide Web (Web) is a method of accessing 
information on the Internet which allows a user to navigate 
the Internet resources intuitively, without IP addresses or 
20 <5ther technical knowledge. The Web dispenses with command- 
line utilities which typically require a user to transmit 
sets of commands to communicate with an Internet server. 
Instead, the Web is made up of hundreds of thousands of 
interconnected "pages", or documents, which can be 
25 displayed on a computer monitor. The Web pages are 

provided by hosts running special servers. Software which 
runs these Web servers is relatively simple and is 
available on a wide range of computer platforms including 
PC's. Equally available is a form of client software, 
3 0 known as a Web "browser", which is used to display Web 
pages as well as traditional non-Web files on the client 
system. Today, the Internet hosts which provide Web 
servers are increasing at a rate of more than 300 per 
month, en route to becoming the preferred method of 
35 Internet communication. 
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Created in 1991, the Web is based on the concept of 
"hypertext" and a transfer method known as "HTTP" 
(Hypertext Transfer Protocol) . HTTP is designed to run 
primarily over TCP/IP and uses the standard Internet setup, 
5 where a server issues the data and a client displays or 
processes it. one format for information transfer is to 
create docxaments using Hypertext Markup Language (HTML) . 
HTML pages are made up of standard text as well as 
formatting codes which indicate how the page should be 
10 displayed. The Web client, a browser, reads these codes in 
order to display the page* The hypertext conventions and 
related functions of the world wide web are described in 
the appendices of U.S. Patent Application Serial No. 
08/328,133, filed on October 24, 1994, by Payne et al. 
15 which is incorporated herein by reference. 

Each Web page may contain pictures and sounds in 
addition to text. Hidden behind certain text, pictures or 
sounds are connections, known as "hypertext links" 
("links"), to other pages within the same server or even on 
20 other computers within the Internet. For example, links 
may be visually displayed as words or phrases that may be 
underlined or displayed in a second color. Each link is 
directed to a web page by using a special name called a URL 
(Uniform Resource Locator) . URLs enable a Web browser to 
25 go directly to any file held on any Web server. A user may 
also specify a known URL by writing it directly into the 
command line on a Web page to jump to another Web page. 

The URL naming system consists of three parts: the 
transfer format, the host name of the machine that holds 
30 the file, and the path to the file. An example of a URL 
may be: 

http: //www^ • college . uxiiv.edu/Ad±T/Bd±jr/Cdir/page . html , 
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25 



30 



35 



host na.e in „hlch denotes thet the tile bei^a 

= re^estea Is . Web p,,., "Mair/Bdlr/calr" Is a set o, 
directory ™,«es i„ tree structu« „ 

»ac.. . „,,,..,^,. J---, PJth on th. host 

indication that the file is i^i^*. 

wrxtten m HTML. 

iresrrictxon. The free access f^«v^^4- • ^ 
T«+. ^ access format inherent to th*:. 

Ihtemet however, presents difficulties for those 
infonnetion providers retiring control over Sl!r l„te„ * 

av>ii.bL on"\:: r.%„«":e^errri jr™"- 

colleagues around the globe, but the in^^^ar"^ " 
..Pt^confiaential. witbout „ea„s "r^^::: i~ " 
Lf™:. "ould not be able to privide 

information on the network on a confiaential or 
preferential basis. In another situation 
want t e highly specifil l^^^ rHL"'^ 

^"t:!"""' — — -tacts 

at jrtTors^s"^ ;Lr::" 

.or^a^file a r... L-;e:tr:e:"rtrs\:eT^^^ 

r^Tt^^eTurit^erb:: ri^^^^^^^^^ 

client does not necessariJv > /^^^^mation host. The 
- server, .t ^l lZr^^TZlZ^JZlT: '^'^^^ 

Clients, ;be"::- oTt"- rs^^oftn^^tt:- 
impossible. Secondly to «r*.^/««* «iiricuit, if not 

naxy, to prevent unwanted intrusion into 
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private local area networks (LAN) , system administrators 
implement various data-flow control mechanisms, such as the 
Internet "firewalls", within their networks. An Internet 
firewall allows a user to reach the Internet anonymously 
5 while preventing intruders of the outside world from 
accessing the user's LAN. 

Summary of the Invention 

The present invention relates to methods of processing 
service requests from a client to a server through a 

10 network. In particular the present invention is applicable 
to processing client requests in an HTTP (Hypertext 
Transfer Protocol) environment, such as the World-Wide Web 
(Web) . One aspect of the invention involves forwarding a 
service request from the client to the server and appending 

15 a session identification (SID) to the request and to 

subsequent service requests from the client to the server 
within a session of requests. In a preferred embodiment, 
the present method involves returning the SID from the 
server to the client upon an initial service request made 

20 by the client. A valid SID may include an authorization 
identifier to allow a user to access controlled files. 

In a preferred embodiment, a client request is made 
with a Uniform Resource Locator (URL) from a Web browser. 
Where a client request is directed to a controlled file 

25 without an SID, the Internet server subjects the client to 
an authorization routine prior to issuing the SID, the SID 
being protected from forgery. A content server initiates 
the authorization routine by redirecting the client's 
request to an authentication server which may be at a 

3 0 different host. Upon receiving a redirected request, the 
authentication server returns a response to interrogate the 
client and then issues an SID to a qualified client. For a 
new client, the authentication server may open a new 
account and issue an SID thereafter. A valid SID typically 
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comprises a user identifiei- ^ 

laerttfler, an expire. on I' """"""^ -^--i", a 
signature such JT^ "nrcrgettaWe digital 

Whan the content server receives a mr 
ecocpanied by an SID , request 
user IP address" a ;r '"^ -""^ 

validate ^ sl" ^^tT " '"^ "^""^^ 
" content server sendrrT. " ^° ™"«»ted, the 

" :r:tir:i— ^^^^^ 

a collection o^ controlled «les o1 IZT' "'"'""^ ^= 
Within one or -ore servers Protection 

vaiidr;j.":r:r::::: ;:r°"" "-^ ^'-^ ^ 

.a lin. to viev another ..TZT ^Z'llZl^^J— ' 
possibilities. The user .ay traverse a li^rr . 

r::i::ivTiir jn- ^= 
^ =r to a ^.^i::-^:^^ - r- 

The new retails all ! ^"'^ """^ " 

SIO. except n'e" ^^^'Z:' i^^^' T"^^"' ^ 

points to a page in th« 1 relative link 

■ remains valid and t^ P"^"'"!- ^o^ain, the SID 

valid, and the reguest is honored. Hovever, if the 
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relative link points to a controlled page in a different 
protection domain, the SID is no longer valid, and the 
client is automatically redirected to forward the rewritten 
UKL to the authentication server to update the SID. The 
5 updated or new SID provides access to the new domain if the 
user is qualified. 

The user may also elect to traverse a link to a 
document in a different path. This is called an "absolute 
link". In generating a new absolute link, the SID is 
10 overwritten by the browser. In the preferred embodiment, 
the content server, in each serving of a controlled Web 
page within the domain, filters the page to include the 
current SID in each absolute URL on the page. Hence, when 
the user elects to traverse an absolute link, the browser 
15 is facilitated with an authenticated URL which is directed 
with its SID to a page in a different path. In another 
embodiment, the content server may forego the filtering 
procedure as above-described and redirect an absolute URL 
to the authentication server for an update. 
20 An absolute link may also be directed to a controlled 

file in a different domain. Again, such a request is 
redirected to the authentication server for processing of a 
new SID. An absolute link directed to an uncontrolled file 
is accorded an immediate access. 
2^ another embodiment, a server access control may be 

maintained by programming the client browser to store an 
SID or a similar tag for use in each URL call to that 
particular server. This embodiment, however, requires a 
special browser which can handle such communications and is 
3 0 generally not suitable for the standard browser format 
common to the Web. 

Another aspect of the invention is to monitor the 
frequency and duration of access to various pages both 
controlled and uncontrolled. A transaction log within a 
35 content server keeps a history of each client access to a 
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page including the link sequence through which th. « 
accessed. Additional i„ wnxch the page was 

...... zz.-zi~',z~: »• 

The above and other features ot the lnv..,n 
including various novel details ^"vention 
10 combinations of ..rts LT ' a-d 
described ..^ /.TrlTlZ. Particularly 
pointed out i„ the claL xTwmT7i"' '""'"'^ '"^ 

" invLiin.' ^r":i:L°iVfitrerof"s^^^^^^^^^ - 

invention. Partang fron, the scope of the 

Brief n>»srrinti»n nr-^ ^.;^^^. 

operatlT ^ ' ""'^-^ "—in, the internet 

^ .aeaii-Tt^: — - 

Figure 3 illustrates an example of a client-<,»>.„ 
excna„,e session involving the access controrand ^^^^ 
»onator.ng method of the present invention. 

Figure 4 is an example of a World wide Web page 

F g^^^ : i: Tr""''^ ^" authorisation foL^ p.,e. 
transL! / ^^^"^ describing the details of the 

translation of telephone numbers to urls. 



BNSCXDCID: <WO 9642041 A2J_> 



wo 96/42041 



PCT/US96/07838 



-9. 

Detailed Description of the Invention : 

Referring now to the drawings. Figure 1 is a graphical 
illustration of the Internet • The Internet 10 is a network 
of millions of interconnected computers 12 including 
5 systems owned by Internet providers 16 and information 
systems (BBS) 20 such as Compuserve or America Online. 
Individual or corporate users may establish connections to 
the Internet in several ways. A user on a home PC 14 may 
purchase an account through the Internet provider 16. 

10 Using a modem 22, the PC user can dial up the Internet 
provider to connect to a high speed modem 24 which, in 
turn, provides a full service connection to the Internet. 
A user 18 may also make a somewhat limited connection to 
the Internet through a BBS 20 that provides an Internet 

15 gateway connection to its customers. 

Figure 2A is a flowchart detailing the preferred 
process of the present invention and Figure 4 illustrates a 
sample Web page displayed at a client by a browser. The 
page includes text 404 which includes underlined link text 

20 412. The title bar 408 and URL bar 4 02 display the title 
and URL of the current web page, respectively. As shown in 
Figure 4, the title of the page is "Content Home Page" and 
the corresponding URL is "http://content.com/homepage". 
When a cursor 414 is positioned over link text 412b, the 

25 page which would be retrieved by clicking a mouse is 

typically identified in a status bar 406 which shows the 
URL for that link. In this example the status bar 406 
shows that the URL for the pointed link 412b is directed to 
a page called "advertisement" in a commercial content 

30 server called "content" . By clicking on the link text, the 
user causes the browser to generate a URL GET request at 
100 in Figure 2A. The browser forwards the request to a 
content server 120, which processes the request by first 
determining whether the requested page is a controlled 

35 document 102. If the request is directed to an 
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uncontrolled page, as in " advert isentent" page in this 
example, the content server records the URL and the IP 
ITIT: X.^""^ ''^'"^ " available, in the transaction 
5 t^tH : """""" """^^ requested page 

5 to the browser 116 for display on the user computer 117. 

content ""T'^ <iir.ci..a to a controlled page, the 

content server determines whether the ORL contains an SID 
102. For example, a URL may be directed to a controlled 
10 It^l "report", such as ••http://content.com/report.., 

10 that requires an SID. if „o siD is present, as in this 

example, the content server sends a ..REDIRECT', response 122 
to the browser 100 to redirect the user's initial request 
to an authentication server 200 to obtain a valid siD. The 
details of the authentication process are described in 
Fxgure 2B and will be discussed later, but the result of 
the process is an siD provided from the authentication 
server to the client. m the above example, a modified URL 
appended with an SID may be: -http: //content .com/ f SID] / 
report". The preferred SID is a sixteen character ASCII 
string that encodes 96 bits of siD data, 6 bits per 
Character. it contains a 32-bit digital signature, a 16- 
bit expiration date with a granularity of one hour, a s-bit 
key Identifier used for key management, an 8-bit domain 
comprising a set of information files to which the current 
SID authorizes access, and a 22-bit user identifier. The 
remaining bits are reserved for expansion. The digital 
signature is a cryptographic hash of the remaining items in 
the SID and the authorized IP address which are encrypted 
with a secret key which is shared by the authentication and 
30 content servers. 

If the initial GET URL contains a SID, the content 
server determines whether the request is directed to a page 
Within the current domain 106. if the request having a SID 
is directed to a controlled page of a different domain, the 
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SID is no longer valid and, again, the user is redirected 
to the authentication server 122. 

If the request is for a controlled page within the 
current domain, the content server proceeds to log the 
request URL, tagged with SID, and the user IP address in 
the transaction log 108. The content server then 
validates the SID 110. Such validation includes the 
following list of checks: (1) the SID's digital signature 
is compared against the digital signature computed from the 
remaining items in the SID and the user IP address using 
the secret key shared by the authentication and content 
servers; (2) the domain field of the SID is checked to 
verify that it is within the domain authorized; and (3) the 
EXP field of the SID is checked to verify that it is later 
15 than the current time. 

If the validation passes, the content server searches 
the page to be forwarded for any absolute URL links 
contained therein 112, that is, any links directed to 
controlled documents in different content servers. The 
content server augments each absolute URL with the current 
SID to facilitate authenticated accesses across multiple 
content servers. The requested page as processed is then 
transmitted to the client browser for display 117. The 
user viewing the requested Web page may elect to traverse 
any link on that page to trigger the entire sequence again 
100. 

Figure 2B describes the details of the authentication 
process. The content server may redirect the client to an 
authentication server. The REDIRECT URL might be: 
"http : / / auth . com/ authenti ca te? doma in= [ doma in ] &URL=http : / / 
content.com/report". That URL requests authentication and 
specifies the domain and the initial URL. In response to 
the REDIRECT, the client browser automatically sends a GET 
request with the provided URL. 
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212 tor credentials i; th! <*-llenge the user 
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inunediately 228 anH ^« appropraate SID 

10 the doci::: rCi::s"L*:™'"t: 

server sends a "CHALLENGF" '^'^"^"i^' the authentication 
-ser to .ro..tt™r ^—1™ "^^^ 
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tonns an authorization header 300 ^ "^"^ 
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be:..AUTHORIZE: (authorization,.. 

Upon receiving the GET request the a,.«,o.,»- 
server cpaerles an account dataLsfjirto d . °'' 
5 the user is authorized 218 t= aeternme whether 

aocu-ent. . prefe;::: Z^. IZLIT """^"^^ 
profile Which includes infoZtlo" f" iZtT*"'" ° 
purposes, such as client IP address lid ^ 
as user demographic infor.ation "Tas ' 
- address, hobby, or occupation ^or l^t^r ""^ 

=iou— ^^^^ 

=taT; ™ :i:x^ie:" 

not guaL^^d to ' " - 

lifled to open a new account, a page denying access 
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222 is transmitted to the client browser 100. If the user 
is qualified, the new user is sent a form page such as 
illustrated in Figure 5 to initiate a real-time on-line 
registration 224. The form may, for example, require 
5 personal information and credit references from the user. 
The browser is able to transmit the data entered by the 
user in the blanks 502 as a "POST" message to the 
authentication server. A POST message causes form contents 
to be sent to the server in a data body other than as part 
10 of the URL. If the registration form filled out by the new 
user is valid 226, an appropriate SID is generated 228. If 
the registration is not valid, access is again denied 222. 

An SID for an authorized user is appended ("tagged") 
230 to the original UKL directed to a controlled page on 
15 the content server. The authentication server then 

transmits a REDIRECT response 232 based on the tagged URL 
to the client browser 100. The modified URL, such as 
"http: //content. com/ [SID] /report" is automatically 
forwarded to the content server 120. 
20 Figure 3, illustrates a typical client-server exchange 

involving the access control and monitoring method of the 
present invention. In Step l, the client 50 running a 
browser transmits a GET request through a network for an 
uncontrolled page (UCP) . For example, the user may request 
25 an advertisement page by transmitting a URL "http:// 
content.com/advertisement", where "content.com" is the 
server name and "advertisement" is the uncontrolled page 
name. In Step 2, the content server 52 processes the GET 
request and transmits the requested page, "advertisement". 
30 The content server also logs the GET request in the 

transaction database 56 by recording the URL, the client IP 
address, and the current time. 

In Step 3, the user on the client machine may elect to 
traverse a link in the advertisement page directed to a 
35 controlled page (CP). For example, the advertisement page 
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report file "http./Joo«^ ? " associated with the 
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-owser to the authenticat^n ser^Tr^tre"' T"'" 
™l having such an authorisation header^^ ' 

cont:n^f:x--rtxt^r:rr^"'^ 

• be: -aphorize: (authorization, " ^^e a!! ""^ 

processes the GET reguest by cheoWn/l ^ """"" 
58. If a valid account existrflr 
i.eu«, Which authorizes acces; tTth 

•■report., and all the other P^r^itTr^ in^^^ 

compa:: z^^^-::^ a~ r^r^ ^ 

Xh step the au^-enLatr^lrr;^ 'd''"" 
to the tagged ma, -http=//crnt!« """"""^ ^^^ent 

ntip. //content. coi»/(siD)/report», to 



BNSDOCtD: <WO 9642041A2_L> 



wo 96/42041 



PCT/US96/07838 



-15- 

the client. In Step 9, the tagged URL is automatically 
forwarded by the browser as a GET request to the content 
server. The content server logs the GET request in the 
Transaction database 56 by recording the tagged URL, the 
5 client IP address, and the current time. In Step 10, the 
content server, upon. validating the SID, transmits the 
requested controlled page "report" for display on the 
client browser. 

According to one aspect of the present invention, the 

10 content server periodically evaluates the record contained 
in the transaction log 56 to determine the frequency and 
duration of accesses to the associated content server. The 
server counts requests to particular pages exclusive of 
repeated requests from a common client in order to 

15 determine the merits of the information on different pages 
for ratings purposes. By excluding repeated calls, the 
system avoids distortions by users attempting to "stuff the 
ballot box." In one embodiment, the time intervals 
between repeated requests by a common client are measured 

20 to exclude those requests falling within a defined period 
of time. 

Additionally, the server may, at any given time, track 
access history within a client-server session. Such a 
history profile informs the service provider about link 

25 transversal frequencies and link paths followed by users. 
This profile is produced by filtering transaction logs from 
one or more servers to select only transactions involving a 
particular user ID (UID) . Two subsequent entries, A and B, 
corresponding to requests from a given user in these logs 

30 represent a link traversal from document A to document B 

made by the user in question. This information may be used 
to identify the most popular links to a specific page and 
to suggest where to insert new links to provide more direct 
access. In another embodiment, the access history is 

3 5 evaluated to determine traversed links leading to a 
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Purchase of a procluct made within 
-formation »ay be used, for exa" r^^r""' 
advertising based on the nul ' ° ^^^^^^ 

advertising page to a prod^Tlar '"^^^^^^^ ^ 

purchases resulting . °^ ''^sed on the 

count ot 

a<iverti3«.e„t. i„ thi! \ "eluding the 

sales th« resulted fro. a p"r"Lr « 
Of llnlcs. The system, can be « P"** 

-erchant ror an advertlsino » *° ^""'^ 

that resuxte. T^Tn^Tl'T"^ -'-^ o. 

Acooraing to another aspect of 
a secondary server, such as Le auth r """" "--'ion, 
" Figure 2B, »ay access a n™ ^"""^t^oMion server 200 

account database 2" ".f T"''^ ^""'^ 
such a profU. i„ the user L^tl^ "--'"oh based on 

__'_J'5««£?!te*sdi«„t,_Je-1o"t^^^^^^^ 

SID to custo,i« user ^egurstedT "'^ " 

personalised content based on L " *° 
■> the SID. °" "ser identifier field of 

In another aspect or th ■ 
access to domain of servers conrr""""' ""^ """^ 'aln 
P-iications through a sl^cri^i^^^^r"":" 
the user .ay purchase the subscription " 
access to on-u„e docu„.„t, thrl!h ° '=° 
S-ains access to a subscribed T ^«amet. The user 

through the authori.atLn'^c:::™:'': T 
Where an authorization indicatrrT -hove 
a session identifier, m anoth ^"^^ahly embedded in 
"'yih, on a prepaid subscript" 7°^^"— ather than 
and billed each time he or she aL ""^ 
-document through the internet ' ^=«i-i« 

»ay not be required so long as the -""""^i^tion 
" - he Charged for'th" s^^viT ^r^sL"""""'^ 
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identif ication is most appropriately embedded in the 
session identifier described above. 

In another aspect of the invention, facilities are 
provided to allow users to utilize conventional telephone 
numbers or other identifiers to access merchant services. 
These merchant services can optionally be protected using 
SIDs. In a preferred embodiment, as shown in Figure 6, a 
Web browser client 601 provides a "dial" command to accept 
a telephone number from a user, as by clicking on a "dial" 
icon and inputting the telephone number through the 
keyboard. The browser then constructs a URL of the form 
"http://directory.net/NUMBER", where NUMBER is the 
telephone number or other identifier specified by the user. 
The browser then performs a GET of the document specified 
by this URL, and contacts directory server 602, sending the 
NUMBER requested in Message 1. 

In another embodiment, implemented with a conventional 
browser, client 601 uses a form page provided by directory 
server 601 that prompts for a telephone number or other 
identifier in place of a "dial" command, and Message l is a 
POST message to a URL specified by this form page. 

once NUMBER is received by directory server 601, the 
directory server uses database 604 to translate the NUMBER 
to a target URL that describes the merchant server and 
document that implements the service corresponding to 
NUMBER. This translation can ignore the punctuation of the 
number, therefore embedded parenthesis or dashes are not 
significant. 

In another embodiment an identifier other than a 
30 number may be provided. For example, a user may enter a 
company name or product name without exact spelling. In 
such a case a "soundex" or other phonetic mapping can be 
used to permit words that sound alike to map to the same 
target URL. Multiple identifiers can also be used, such as 



20 



25 
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30 



35 



a telephone number i„ conjunction with a „ . 
extension. ^ product name or 

In Message 2, Directory serv*.^ 
Client 601, specif Vina th!T ^^"''^ ^ Redirect to 

S -pute..ro/.ataL"e%t."rcl^^^^^^^ 

automatically sends Message 3 to ll^Z """" 
"RL. Merchant server 603 returns 1' °' 
Message 4. The server- J, ^ information in 

to the Client to™ e .^:^:^ ^^-ed a Weh page 

10 reguired document Howeve" ^o the 

translation to a final ^ I ! "^^^^^ « 

a page to client SoT thTdL ' ^"^'^^^ ^^^^^ 

Without any user action LyllT "^^^^^^ ^ ^^^ained 
The Target ^ conta1':d in L"'^ ' 
^ to an uncontrolled pare " 
that describes a controlled page ^1 ^ ^ 

describes a control! »h ^ Target url 

i-Ple.enta.ion is an i^,o J",'^ rH:"' ^"^ 

that is co»patlM. with oonventlLa tLel""' 

other idmtifiars h^^^k ^ '"'^''""^ telephone numbers and 

print or teXavisL a::e«Lrnrto"" " "^^^ '"^^^ 

specific fonn of oo„t,T Provide an Internet 

to learn .^Zt lZ -ers do not need 

-Itipre^e'rw™ : can provide 

-telephone n^^^ ZZl^Z^TJ^tTT ^ ^ 

users dial the "fil«h^ =. • "^"^^^^ers. Por example, if 

—cted to the ^Tor Zr.l^T'' '"^^ ^ 
«>1 the "reservations.. TZ^T ' " they 

the ™. for the reservatLT^^^e ^^^^^""-^ to 

n^her could be directed to a^^n roliedT^^L^^t 
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would first authenticate the user as belonging to the gold 
users group, and then would provide access to the "priority 
gold" page. An unpublished "ambassador" number could be 
directed to a tagged URL that permits access to the 
5 "priority gold" page without user authentication. 

This invention has particular application to network 
sales systems such as presented in U.S. Patent Application 
Serial No. 08/328,133, filed October 24, 1994, by Payne 
et_al. which is incorporated herein by reference. 

10 Equivalents ; 

Those skilled in the art will know, or be able to 
ascertain using no more than routine experimentation, many 
equivalents to the specific embodiments or the invention 
described herein. These and all other equivalents are 
15 intended to be encompassed by the following claims. 
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/* TclIdSid 

Scans an ascii line and finds an ascii STn < 

* Inputs: " ^^""^^ (no validation though) 

* lineoftext 

* Returns: 

* ascii Mn.sid. if a sid i. found i. i« .^turned. 
*/ 

int TolIdSid(ClientData du„»,y. Tcl_l„te^ nntexp, 

^ int argc, char **argv) 

char *sidp, *cp/ 

interp->result [Oj » O; 
if {argc i « 2) 

{ 

interp->result = -wrong # args«; 

return TCL ERROR, 

} 

- (Char *) strstr(argv[i]. -/M-) ; 
If (sid p woLL) return TCL ok.- 
cp - (char *) strstr(sidp+i, -/-)' • 



if ((cp o. NOLL) && (strlen(aidp) -„ 19,, 
if ((cp - sidp) .= 10, return TCL_OK; 

tr oj.api .=, 13) return TCL_OK- 

stmcpy(interp->resuat, sidp. is) 
interp->resultll9] s O; 
retum TCL_OK; 
} 



/* 

•^Register commands with interpreter, 
int SidSuplnit(Tcl_interp -inteip) 

Tcl.CreateCommandCinterp. -pacJcsid-, TclPackSid ^ 

Tcl_CreateConu»and(interp, "unpacksid" ' ^> 

Tcl_createConn„and,inteS -Zac^Ll' ^'^'^P^'^^^'^' NULL); 

NOLL, "»P^<'ks.dnovalidate-, TclUnpackSidNoValidate. 

Tcl_createCoinniand(intetp, -issid-. t=3th« 

return TCL_OK; ^ciiasad. null, NULL) • 

) 
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/* 

* . 

★ 

* compute_ihash - - 
<* 

* Compute the MD5 hash for the specified string, returning the hash as 

* a 32b xor of the 4 hash longwords . 
* 

* Results: 

* hash int. 

* Side effects : 

* None . 

* 

•/ 

int coiiipute_iha8h(char *8tr) 

{ 

MD5_CTX md5; 
unsigned char hash [161; 
unsigned int *pl; 
unsigned int hashi « 0; 

MDSInit (&md5) ; 

MDSUpdate (&md5, str, strlen(str) ) ; 

MDSFinal (hash, &md5) ; 

pi = (unsigned int *) hash; 

hashi = *pl++; 
hashi ^= *pl++; 
hashi ^= *pl++; 
hashi ^= *pl++; 
return hashi; 

} 

/* 

* ticket. c 
* 

* Commands for TICKET. 
* 

* Copyright 1995 by Open Market, Inc. 

* All rights reserved. 
* 

* This file contains proprietary and confidential information and 

* remains the xmpublished property of Open Market, Inc. Use, 

* disclosure, or reproduction is prohibited except as permitted by 

* express written license agreement with Open Market, Inc. 
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* Steve Morris 

* morris@OpenMarket.com 

* created: Wed Mar a 1995 
*/ 

#if ! defined (lint) 

static const char rcsidf] =-SHead«. / 

■ '°""'^"^/"«"--/<"»httpd/Attic/ticV . 
#endif /•not lintv ' P**/Att.c/tacJcet.c,v 

#iaclude <stdio.h> 
#include <ays/utsname .h> 
^include "httpd.h" 
#incXude "mds.h" 
ttinclude "ticket. h" 

static TICKET_Server TicketServerData; 
/* 

* This file implements all the tick^h/ 

* . ^^^'^^ the server. 

* — s to groups Of filts based"! ^'^^^ 

; two con^ands are very slTl^'' ^ -thentication of the requestor 
: ^'"^-^ authentication dataTvia 1" ™^ -thod used to 

,^^^-cript, i. -^i^^^ ^^e™--^^^^^^^^ 

: '^^^-^^^^ '^-ai- Cdomain. ... 

Tbis command denies access unless the 

true of the request. Only ^ l ^^"^^^d Properties are 

*/ 

■•.niciiar *doinname, int df It) ; 
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static char *GetAsciiDomain (char *doinname, char *df It) ; 

static int coinputer_ihash (char *str} ; 

static char *computerHash (char *str) ; 

static char *GetSecret {int kid) ; 

static int GetKidByKeyID(char *keyID) ; 

static char *CreateSid (HTTP_Request *regPtr, int dom, int uid, int kid, 

int exp, int uctx) ; 
static void f reeTicketReqData (void *dataPtr) ; 
static void DximpStatus (HTTP^Request *reqPtr) ; 

static void TICKET_DebugHooks(ClientData clientData, char *suffix, 

HTTP_Reguest *reqPtr) ; 
static int ParseSid (HTTP_Request *reqPtr) ; 
static int ParseTicket (HTTP_Request *reqPtr) ; 
static char *f ieldParse (char *str, char sep, char ♦*endptr) / 
void TICKET_Conf igCheckO ; 
void DumpRusage (HTTP_Request *reqPtr) ; 



/* 



* TICKET_RecruireSidCmd — 

Checks that the requested URL is authorized via SID to access this 
region. If the access is not authorized and we do not have a -remote' 
authentication server" registered, then an "unauthroized message" 

* is returned. if a "remote authentication server" has been 
declared, we REDIRECT to that server, passing the requested URL and 

* required domain's as arguments. 
* 

* Results: 

* Normal Tel result, or a REDIRECT request. 

* Side effects : 

* Either an "unauthorized access" message or a REDIRECT in case of 
error . 



*/ 

static int TlCKET_RequireSidCmd(ClientData clientData, Tcl^Interp *interp, 

int argc, char **argv) 

{ 

if (TicketGlobalData(EnableSidEater) ) return TCL_OK ; 

return (ProcessRequires (ClientData, interp,argc, argv, ticketsid) ) • 

) 

/* 
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* ProcessRequired 
* 

message. access generates a returned error 

aUenticI" "'^^^ ^"^^ - operating in nocal 

™o.e.-. i. are, «e generate a ne« SXO, into t.e 

re.oteautL:rcaS """" "^'^ — e of a 

server, i. ^ve one declared Cin t.e conf ei.e, we to it 

t.e KO^ , ,,,, ^^^^ ^^^^^ ^^^^^ 

* authentication server was not found ve return 

* una we return an error message. 

* Results." 

»=^. TCI „„U, . ^ . ^^^^^ 

* Side effects: 



error 
* 



•/ 

.n. .roo...K.^.„.,«,,„^,^ ^^^^^^^^ ^^^^^^ ^^^^^ 
^ mt argc. char **argv. int flavor) 

Miip^server *serverPtr; 
TICKET_Request *ticJcetPtr; 
DString targetUrl; 
DString escapeUrl; 
int required_dom; 
int firstLegalDom = -i; 
char *NewSid, *cp; 

DStringinit (&targetUrl) ; 
DStringlnit (&escapeUrl) ; 

ASSERT (ticketPtr !- NOLL),. 
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/* compare the requesting SID/Ticket<DOM> to authorized list of domains */ 
/* a match OR any valid domain and a required domain of TicketFreeArea is 

su 

for (i = 1; i < argc; i++) 
{ 

required_dom = GetDomain (argv [i] -1) ; 
if (required_dom != -1) 
{ 

if (firstLegalDom ==* -i) f irstLegalDom = required_dom; 
if ( (ticketPtr->sidDom required_dom) | | 

(ticketPtr->valid && (ticketPtr->sidDom != -x) && 
(required_dom TicketGlobalData (FreeArea) ) ) || 
( (ticketPtr->ticketDom == required_dom) && 
(time(O) ticketPtr->ticketExp) && 
( (DStringLength<£tticketPtr->ticketIP) 0) 1| 

(strcmp(DStringValue(&ticketPtr->ticketIP) , DStringValue (&reqPtr- 



>r 



) 



{ 

DStringPree (ttargetUrl) 
DStringFree (&escapeUrl) ; 
return TCL_OK; 
} 



} 

} 



/* coxont the number of domain crossing that caused re-auth */ 

if ((flavor ticketSid) && ( ticketPtr->sidDom) != -i) IncTi eke t Count er (Cou.. 

/* authorization failed, if this was a sid url, and local auth is enabled */ 
/* or this was an access to the free area */ 

/* insert a new sid in the url, and REDIRECT back to the client 8? 
if (TicketGlobalData (EnableLocalAuth) | | 

((firstLegalDom TicketGlobalData (FreeArea) ) 

(flavor == ticketSid) (firstLegalDom ! «= -l))) 

{ 

if ( (DStringLength(&reqPtr->url) i= o) && 

(DStringValue (&reqPtr->url) [0] i= '/')) 

{ 

HTTP_Error(reqPtr, NOT_FODND, "access denied due to poorly formed url") ; 
DStringFree (&targetUrl) ; 
DStringFree (fcescapeUrl) ; 
if ( ! ticketPtr->valid) 

DStringFree (tticketPtr->sid) ,- 
return TCL_RETDRN; 

} 

NewSid = CreateSid (reqPtr, 
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firstLegalDom, ticJcetPtr->uid 
TicketGlobalData(CurreatSecretl -r- u 

ticlcetPtr->uctxJ ; ' ^^'=^«tGlobalData (LocalAuthExp) 

DStringPree (&ticketPtr->sid) ; 
DStrlngAppe„d(&ticketPtr->sid. NewSid -a) 
ComposeURLfregPtr. DStringValue (t^: 

XncTicketCounter (countx^cal L^i:^^^^^^^^ ' "-^etUrl, , 

HTTP_Error*reqPtr. REDIRECT DStrl„«v i 

DStringPree (^argetOrl); "^""'^^^^^-^ ''^targetorl) , ; 

DStringPree ( fiescapeUrl ) '; 
if (^ticketPtr->valid) 

DStringPree (&ticketPtr->sid) , 
return TCL_RETDRN; 

xf <;DStringLe„gt:h(4re,Ptr->urI) -= o) « 
^ 'I'StringValuefireqPtr-^url, fO] ..= ./')) 

HTTP_Error(reqPtr. NOT POUND .acee«= ^ ■ 

DStringPree(stargetUrir; ''"^ P^^^lV formed url-, 

DStringPree (aeseap^tTrl) ; 

if (!tieketPtr->valid) ' 

DStringPree (tticketPtr->sid) ; 

return TCL_rbtdrn ■ 
} 

DStringAppend(&taroetnrT ne^ • 

nstring^pend(.tar^etan: »'ur\T^'rr ''^^'^'^^^^^''^^^--a UuthServer) , . 

Co.^poseDRl.(re,Ptr. DStringValue (*;egPtr->url, . 
Escapeorl (sescapeOrl) • ^u^U. SescapeUrl) 

DStringrruncf&escapeUn, o) ; 

DStringAppend(&escapetJrl, -f= -i, 
for (i=a; i , ' ' ^J'- 

( 

CP = GetAsciiDoinain*argv[i], ndll) • 
Xf (cp !o NOLL) 

{ 



DStringAppend ( iescapeUrl , cp , - i ) . 
DStringAppendCiescapeOrl, - » 

) 
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DSt ringAppend ( &escapeUrl , " } « , - i ) ; 
EscapeUrl (ficescapeUrl) ; 

DStringAppend ( &targetUrl . DS tringValue ( &escapeUrl ) , - 1 ) ; 
DStringFree (&escapeUrl) ; 

HTTP_Error(reqPtr, REDIRECT, DStringValue (&targetUrl) ) ; 
IncTicketCoxmter{CoiintRemoteRedirects) / 
DSt ringFree ( &targetUrl ) ; 
if ( ! ticketPtr- >valid) 

DStringFree (&ticketPtr->sid) ; 
return TCL_RETORN; 

} 

/• authorization failed, if this is a ticket access, decode the */ 
/* reason and handl via a redirect to a handler, or punt a */ 
/* no access message */ 

if^( (flavor « ticketTicket) (f irstl^galDom -i) {ticketPtr->ticketD 

/* check For IP address restrictions */ 

if ( (DStringLength(&ticketPtr->ticket IP) o) && 

(DstringLength(&TicketGlobalData(TicketAdrHandler)) i- 0) && 
^ ( strcmp (DStringValue (&ticketPtr->ticket IP) , DStringValue (&regPtr->remo 

DStringi^pend ( fitargetUrl , DStringValue ( &TicketGlobalData (TicketAdrHandle 
DStringAppend (&targetUrl, DStringValue (&ticketPtr->f ields) , -1) ; 
DStringAppend (&targetUrl, »&urla", -i) ; 

DStringAppend ( &targe tUr 1 , DStringValue ( &regPt r- >url ) , - 1 ) ; 
IncTicketCounter (CountTicketAddr) ; 

HTTP_Error(reqPtr, REDIRECT, DStringValue (fttargetUrl) ) ; 
DStringFree{&targetUrl) ; 
return TCL_RETDRN; 
} 



/♦ check for expired tickets */ 
if (time(O) > ticketPtr- >ticketExp) 
{ 

DStringAppend ( &targetUrl , DStringValue ( &TicketGlobalData (TicketExpHandle 
DStringAppend (&targetUrl, DStringValue (&ticketPtr->fields) , -l) ; 
DStringAppend ( &targetUr 1 , " &url= ",-!); 

DStringAppend ( &targetUrl , DStringValue ( &reqPtr- >url ) , - i ) ; 
IncTicketCounter (CoxintExpiredTicket) ; /* 

HTTP_Error ( reqPt r , REDIRECT , DStringValue ( &target0r 1 ) ) ; 
DStringFree (ttargetUrl) ; 
return TCL_RKTUKN ; 

} 

} 



BNSOOCID: <WO_9e4204lA2_L> 



suBsrrruTE sheet (rule 26) 



wo 96/42041 

PCT/US96/07838 

-28- 

/- no handler, puxxt a message */ 
HTTP_Error(regPtr, PORBIDDEK, -access h • 

ticKet/sid region 

IncTacketCounter (CountNoRedirects) - 

If ( JticketPtr->valid) 
DStringPree (&ticketPtr->sid) • 
DStringPree { ttargetUrl ) ; 
DStringPree (&escapeUrl ) • 
return TCL_RETDRN; 



/• 

*- - 



* Get (Ascii) Domain 
These 



xnese routine perfonns an ascii t« k- 
: ''^"^^'^ ''cey') from the ser^er^s ^'"^ 

* pair-a are loaded into the catalog at ^-"-/n^mbe 

• With the "Domain., configuration ™ I""^^^*"™ time with the 



pointer to a character™ ™ version returns 

non ^eii version returns I^IJ:Z~^^ 

representing the domain number. 



xnteger 

* Resiats: 



xs- available, returns deflt 
Side effects: 
None . 



/ 



static int GetOomain (char 

^ "1 icnar *domname, int deflt) 

HashEntry *entryPtr; 
©String DomKame; 

DStringlnit (SDomName) ; 
^Stri^AppendCa^omName. domname, -i, . 
strtolower (DStringValue (SDomName) , / ' 

entryptr = PindHashEntry (tTicv»,-c 
Mtringvalue (*DomName) ) ; ^''^"'*""^'^-'^^-ta. Domains, 

DStringPree (sDomName) ; 

if (entryPtr .= noll, return deflt; 
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return (int) GetHashValue (entryPtr) • 
} 

static char * GetAsciiDotnain (char *domname, char *deflt) 

HashEntry *entryPtr; 
static char buffer[64]; 
DString DomName; 

DStringlnit (&DoniName) ; 
DStringAppend(Doi«Name, dotnname, -1) ; 
strtolower <DStringValue(&DoTnName) ) ; 

entryPtr = FindHashEntry {&Ti eke t Serve rDat a. Domains, 
DStringValue ( &DoniName ) ) ; 
DStringFree(&DoinNanie) ; 
if (entryPtr NULL) return deflt; 

spr int f (buffer, "%d", (int) GetHashValue (entryPtr) ) ; 
return buffer; 

} 



* TICKET_InsertLocalSid — 

* Given a URL, inspect it to see if it refers to the local server/port 

* if it does, and it does not already contain a SID, insert one if 

* the current request included one. Note, for port 80 access we look 

* for a match with and without the port specifier. 

* Results: 

* None. 

* Side effects: 

A SID may be inserted into the URL. 

•* 

* ^ 

*/ 

void TlCKET_lnsertLocalSid(HTTP_Request *reqPtr, DString *result) 
{ 

HTTP_Server *serverPtr; 
TICKET_Requ€St ♦ticketPtr; 
char tmp[32] ; 
DString patteml; 
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DString pattem2; 
DString tmp_url; 
DString *hitPatteni * ndlL; 

ticJcetPtr = (TICKET Request *) ht 
TicketServerData.tic ^ ^ " ' ^-°««eqExtData (regPtr, 
if (ticketPtr „ NOLL) return; 
serverPtr = regPtr->serverPtr; 

DStringinit (ftpatternl) ? 
DStringlnit (&pattem2) • 
DStringinit (&ta?)_uri) ; ' 

DStringAppend(*pattemi, "http://- . 

if ((MtringLength (result) >- ostn^ r 
(stmcasecmp (DStringvalue (t^tt^T^'' ''"^^^'^^^ > " 
DStringLengt hitPattem . .palt^r^r ' "^'''"^^^^^ ^"»"lt, , 

_ '±^^l^^^-->^erv^r_^rt 80)-« ^ 

(DStringLength (result) >= DStri„„T 

(strncasec„p(OStringValue(^at:e^''^^^^^^^ " 
DStringLength hitPattem . ^paTte^ ' '^eault) . 

if (hitPattem j . noll) 
DStringPree (result) ; 

DStringAppend(re8ult. DstringValue (it™. 
r>StringPree(«mp_url) ; < "np_url ) , -i, , 

DStringPree (&pattemi) ; 
DStringPree (tpattema) 
DStringPree (itinp_url) ; 
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CreateSid 



This routine takes the passed arguments and creates a sid. 



* Results: 

* A sid. 
* 

* Side effects: 
* 



*/ 

char * CreateSid(HTTP,Request *regPtr, . int dom, int uid, int kid, int exp, 
int uctx) ^ 

{ 

int bsidtS] - {0,0,0}; 
char temp_str [512] ; 
DStrdLng hash; 
int act_hash; 
static char sid [64] ; 
lansigned int expire_time ; 
char *secret; 
char *hashP; 
char *cp; 

unsigned char *ecp; 
unsigned int eda; 
int endian = i; 



DStringlnit ( fchash) ; 
expire_time stime(0}-4- exp; 



put^sid (dom_lw, 
put_sid (uid^lw, 
put_sid (kid_lw, 
put^sid (exp_lw. 



doinjos , 
uid_pos , 
kidjpos , 
esp_pos , 



(expir€_time>>exp_shf t_amt) ) 

put_sid (uctx_lw, uctx_j)os , 

PUt_sid (rev_lw, rev_pos , 

secret » GetSecret (kid) ; 

ASSERT (secret ! « NDIiL) ; 

DS tr ingi^pend ( &hash , secret , - 1 ) ; 



dom^mask, 
uid_mask, 
kid_mask, 
exp_mask. 



dom) ; 
uid) ; 
kid) ; 



uctx_niask, uctx) ; 
rev_niask, sid_rev_zero) ; 
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DStringAppend ( &hash, DStringValue ( 6^o„n^ 

sprxntf(temp_str, "%08x%08x", bsid [2] ,bsadU] ) . 

DStringAppend (&hash, temp_str. -i, • 

/* format of the hash string is %s%s%08x*0«c" 
secret,ip_addr,bsid[2[,bsidfl ' 

hashP = DStringValue (&hash) ; 

act_hash =. coinpute_ihash (hashP) • 

while (*hashP I . 0) *hashP+^ ='o; 
DStringFree ( fchash) ; 
/* fix_endian(sact_hash, ecp. eda) ; */ 

•put_sid(sig_lw, sig_pos, sig_«ek, act.hash) 

/* fix_endian(&bsid[0], ecp, eda); ♦/ 
fix_endian(&bsidli], ecp, eda) 
fix_endian*&bsid[2], ecp. eda),' 

#if (1 .= 0 

Dumpsid ( ) ; 
#endif 

cp - «di^4encode_no8lash{(char *) bsid 12). 
8trcpy(sid, SID_prefix); 

strcat^sid^ 9P>_L 



freelcp) ; 
return ( Sid) ; 
} 



/* 



confute hash -- 



Compute the MD5 hash for the specified stri«« . 

a 32 b ^r of the 4 hash longwLds ^' """"^^^^ ^^h as 



* Results : 
liash int. 



* Side effects: 
None. 
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*/ 

static int compute_ihash (char *str) 

{ 

MD5_CTX mdS; 
unsigned char hash [16] ; 
unsigned int *pl; 
unsigned int hashi = O; 

MDInit (&md5)*; 
MDUpdate (&ind5, (xmsigned char ♦) str, strlen (str) ) ; 
MDPinal (hash, &md5) ? 
pi = (unsigned int *) hash; 

hashi ~ *pl++; 
hashi "^ss *pl++; 
hashi ^= *pl+-h; 
hashi ♦pl++; 
return hashi; 

} 

* . 

♦ 

* computeHash 
♦ 

* Compute the MDS hash for the specified string, returning the hash as 

* a 32 -character hex string, 
★ 

* Results : 

Pointer to static hash string. 

* 

* Side Effects: 

* None. 

* » _ . 

*/ 

static char *computeHash (char *str) 
{ 

int i; 

MD5_CTX mdS; 
xmsigned char hash [16] ; 
static char hashstr[33]; 
char *q; 
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MDSInit (firadS) ; 

MD5Dpdate(&md5, (unsigned char str, strlen (str) ) • 
MD5 Final (hash, &md5) ; 
q = hashstr; 
for(i=0; i<16; i++ { 
sprintf(q, "%02jc", hash[i]); 

q += 2; 

} 

*q « '\0' ; 
return hashstr; 



/* 
4. 



* TlCKET_ParseTicket 

* Zll^'' dorequest, before any region co^nands or mount handlers 

* have run. We parse and handle incomeing sid's and ticket^ 

* Results: 

* None. 

* Side effects: 



*/ 

int TICKET^ParseXicket (HTTP_Request *reqPtr) 
int status » HT_OK; 

IncTicketCounter{CountTotalUrl) ; 
status « ParseSid(reqPtr) ; 

if (TicketGlobalData (EnableTicke^^ jct /««.^.- 

^^^^ (status HT OK)) staMici 

ParseTicke return status; " status 

} 



* Parses id -- 
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* called by TICKET.ParseTicket , before any region conrmands or mount handle 

* have ram. We parse and handle incomeing sid's. 

* Results : 

* None . 

<*• 

* Side effects: 

*- 

*/ 



int ParseSid(HTTP_Request *reqPtr) 

{ 

TICKEKT_Request *ticketPtr; 
HTTP_Server *serverPtr; 
DString hash; 
Int i; 

char *cp, *cpl; 

int *bsid=NULL, act_hash; 

unsigned int cur_tim, tdif , exp_tim; 

char *secret; 

char temp^str [512] ; 

char *hashP; 

int sid_ok = 0; 

unsigned char *ecp; 

unsigned int eda; 

int endian = l; 

int ipi , ip2 , ip3^, ip^; 

/* fetch the server private ticket extension data */ 

/* note that this sets up a default ticket block for both SID's and Ticket, a 
serverPtr = reqPtr->serverPtr ; 

ticketPtr = <TICKET_Request *) HT^GetReqExtData (reqPtr, TicketServerData. ti* 
ASSERT (ticketPtr «= NULL) ; 

ticketPtr = (TICKET_Reque6t *) Malloc ( sizeof (TICKET_Request) ) ; 

HT__AddReqExtData(reqPtr, TicketServerData . ticketExtensionId, ticketPtr, free 

DStringlnit (&ticketPtr->rawUrl) ; 

DStringlnit (&ticketPtr->sid) ; 

DStringlnit (&ticketPtr->fields) ; 

DStringlnit (&TicketPtr->signature) ; 

DStringlnit (&TicketPtr->ticketrP) ; 



ticketPtr- >valid = 0; 

ticketPtr->sidDom » -i; 

ticketPtr- >ticketDom = -l; 

ticketPtr- >ticketExp = -i; 

ticketPtr- >uid » o 
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TicketPtr->uctx « q. 

sscanf (DStringValue (&~*tp«- 

.i=.«Pt,->„.l . uZZZ^'T^ZL "P3. . 

tictetPtr->„c« . 1, I I(>P3..P41«1S, I |r„a<) SOXTFFP,;, 

/* we are done if sids 

cpl = DStringValue (&reqPtr->url. " ' 

If (strstrcopi, SID prefix) . ='cpi, 

return HT_OK,- 
if^(strlen(cpi) eidLeagth) 

DStringAppend(&reqPtr->url 1) 
DStringAppend(&reqPtr->path, il' 
cpl = DStringValue ( sregPtr- >url ) ' 

CP = «trchr(cpi.3izeof(siD_prefi.,, V'); 
^f ((op - cpl) sidLength) 

return HT_OK; 
incTicketCounter (CountSidUrl ) ; 

DStringinit(&hash) ; 

^^'^^ol^tToll^^^^^^ Without the Sid, and reprocess t 

°^'''^^9^P«^*hishr^StringVa^^^ 

DStringFree (reqPtr->url) ; f'«'Jl'tr->„rl) . -i, , 

DStringAppend(&regPtr->im ne- • 

DStringTrunc(^3h, o, , ^'^-^J '^Bh) .sidLength, -i, , 

DStriagAppend(thash, DStrinaVai„» 
DStringrree(^egPt.. J2;7^"'"^''"'^^'=--Path, ' 

DStringAppend(&reaPtr-:*M^K r.r,^ . 

DStringPree(U,ashr ' ^^^l*) -IdLength, -a,, 

IncTlcketCounter (CountDiscardedSidUrl ) • 
return HT OK; "ura,. 

} 

^String.ppend.tic.etPtr->sid, DStringValue .re.Ptr.url. .dLength, . 
/* fxrst convert the SID back to binary*/ 
^ » ''StringLength(&ticketPtr->eid)-3. 

fix_endian(&bsidto], ecp, eda) 
fix_endian(&bsid[i). ecp. eda) 
fix_endian(&bsid[2], ecp, eda) 
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/* check the SID version field */ 

if (get_sid(rev_lw,revj>os,rev_mask) ! = sid_rev_2ero) goto sid_bad; 
if {get_sid(rsrvl_lw,rsrvl_pos,rsrvl_mask) • = 0) ) goto sid__bad; 
if (get_sid(rsrv2_lw,rsrv2_pos,rsrv2_raask) !+ 0) goto sid_bad; 

/* Get a pointer to the secret */ 

secret = GetSecret (get_sid (kid_lw, kid_pos, kid^mask) ) ; 
if (secret NULL) goto sid_bad; 



/* hash the sid and check the signature*/ 
DStringAppend(&hash, secret, -1) ; 

DStringAppend(&hash, DStringValue (&reqPtr->remoteAddr) , -i) ; 
sprintf {temp_str, "%08x%08x", bsid [2] ,bsid [i] ) ; 
dstringAppend(&hash, temp_str, -1) ; 

/* format of the hash string is %s%s%08x%08x- , secret, ip_addr,bsid (2) , bsid (1 

hashP = DStringValue(&hash) ; 
act_hash = con^ute__ihash (hashP) ; 
while (*hashP !:= 0) *hashP== 0; 
f ix_endian(&act_hash, ecp, eda) ; 

if (act_hash 1= get_sid{sig_lw, sig_pos, sig_inask) ) goto sid_bad; 

/* is is ok, may be expired, but good enough to id user */ 
ticket Ptr->uiid « get_sid {uid_llw,uid_j)Os,uid_mask) ; 
ticket Ptr->uctx = get_sid (uctx_lw,uctxjpos,uctx_mask) ; 

/* do the SID experation processing*/ 
cur_tim = (time ( 0) »exp_shf t_cunt) & exp_mask; 
expp_tim = get_sid(exp_lw,exp_pos.exp__raask) ; 
tdif (exp_tim - cur_tim) & Oxffff ; 
if (tdif > 0X7fff) 
{ 

IncTicketCounter (countEa^Sid) ; 
goto sid_exp; 

} 

/* sid is fine, save the sid state, update the url's */ 
ticketPtr->sidDom = get_sid (dom_lw, domj>os, dom_mask) ; 
ticketPtr->valid = 1; 
sid_ok = 1; 

IncTicketCounter (CountValidSid) ; 
sid_bad: 

if ( ! (sid_ok) ) IncTicketCounter (CountlnvalidSid) ; 
sid__exp : 

DStringAppend(&ticketPtr->rawUrl, DStringValue (&reqPtr->path) , -l) ; 
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DStringXrunc (&regPtr->path, o) ; 

DStringTrunc(&ticketPtr->rawUrl, o) - 
DStringAppend(&ticketPt:r->rawUrl • 

OStringTrunc(*reqPtr->url, oT- """''^"^^"^"^ f'«'5*"=->url) , -x, 
DStringAppend(&reqPtr->url ne«. • 

rtn_exit : 

DStringPree (&hash) ; 

if <bsid !- NOLL) free(bsid); 

return HT_OK; 

} 



/* 



* freeTictetRegData 
* 

* This routine frees «^ 

• tice. specific request 

* 

* Results: 

* None . 



* Side effects: 

* Memory freed. 



;tatic void freeTicket8eqData(void ^dataPtr) 

TICKET_Reguest *ticketPtr - dataPtr- 
nstriagPree (^ticketPtr->rawarl, ^ 
DStringPree (iticketPtr->sid) • 
DStringPree (&ticJcetPtr->fiel,L) • 
DStringPree («^ticketPtr->signatu;e) ; 

DStrxngPree(«.ticketPtr->ticlcetIP, • 

free(tic)cetPtr) ; 

} 



* GetSecret 



Given a binary keyiD 

yiD, returns an ascii secret from the 
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* secrets store. 

* for untranslatable names, return NULL. 
* 

* Results: 

* "I've got a secret, now you do too« 
* 

* Side effects: 



char *GetSecret (int kid) 
{ 

HashEntry "entryPtr; 

entryPtr + FindHashEntry( &TicketServerData, Secret sKid, (void*) kid) ; 
if (entryPtr NULL) return NULL; 

return DStringValue { ( (DString *)GetHashValue {entryPtr ) ) ; 



/* 

* 

* 

* GetKidByKeylD 
* 

* Given an ascii KeylD return the binary Key ID. 

* for xintranslatable names, return -1. 

* Results: 

* "I've got a secret, now you do too" 

* Side effects: 



*/ 

int GetKidByKeylD (char *keyID) 
{ 

HashEntry *entryPtr; . 

entryPtr = FindHashEntry (*&TicketServerData .KeyID< (void *) keylD 
if (entryPtr == NULL) retiim -l; 
return (int) GetHashValue (entryPtr) ; 
) 
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/* 

* 

★ . 

* fieldParse 



* Given a string, a separator character, extracts a field up to the 

* separator into the result string. 

* Does substitution on '%XX' sequences, and returns the pointer to .y. 

* Character beyond last character in -endptr' . ^""^ 

* Results: 

* Returns a malloc'ed string (caller „„ast free), or NDLL if an 

* error occurred during processing (such as an invalid se^ence) . 

* Side effects: 

* None . 



#define SIZE^INC 200 

statiic char *f ieldParse(char *str. char sep. char -endptr) 

char buf [3J ; 
char c; 

^end, *data, *p; 

int maxlen, len; 



len =s 0; 

tnaxlen « SI2E_INC/ 

P « data = nialXoc(maxlen} ; 

/♦ 

*^Loop through string, until end of string or sep character. 
while(*str && ♦str != sep) { 
if (♦str ■=! ) ( 

if{iisxdigit(str([l]) II lisxdigit(str(23)) { 
free (data) ; 
return NOLL; 

} 

buffo] « str [13 ; 

buf [1] « str [2] ; 

buf[2J = '\0'; 

c = strtoKbuf, &end, 16); 

str +-I 3; 
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} else if (*str =='+') { 

C = ' '; 

str++; 
} else 
c = *str+-»-; 

*p++ = c; 
len++; 

if (len >a maxlen) { 
maxlen +*= SI2E_INC; 
data - realloc(data, maxlen); 
p = data + len; 

} 



) 

*p++ = ' \0' ; 

*endptr = str; 
return data; 

} 



DomainNameCmd 



* A call to this routine, builds the ascii domain name 

* to binary domain name maping structure for a numeric domain, 

* Syntax is Domain number namel name2 name3 name . . . name_last 

* At least one name is required. The number is decimal and 

* can be any value except -1. -1 is reserved as a marker 
^ for untranslatable names. 

* 

* Results: 

* None . 

* Side effects: 

* Commands are validate, and entries added to the map 
* 

* 

*/ 

static int DomainNameCmd (ClientData clientData, Tcl^lnterp *interp, 

int argc, char **argv) 

int new,i; 

HashEntry *entryPtr; 
int DomNumber; 
DString DomName; 
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if (argc <3) 
{ 

Tcl_AppendKesult(interp. argvlo,. - airectlve: ^ons .^.r of - 
"arguments, should be \"3\-., 
(char *) NOLL) ; 
return TCI,_ERROR; 
} 

DStringlnit (&DoinNaine) ; 

if (((sscanf(argvU,. -Vd-. «>on«u„a>er, . . a ,, CDo^Mu^her -a,„ 

Tcl_Appen«iResult(interp. argv[o) , - directive: 

"Domain number must be an inteam-r ^r,^' ^ 

not eavial to -i" 

value found was ".argv[i]. ' 
(char *) HULL); 
return to TCL_ERROR- 
} 

for (i = 2; i < argc; i++) 

■{ • 

DStringPree (&DomIIame) ; 
DString;^pend(&DomName. argvTi] , -i) , 
strtolower(DStxing Value (&DomName) ) ; ' 

"'< ^.: ^..^.^^^ 

if ~ (new == 0) 

{ 

Tcl_;^pendResult(interp. argvtO], - directive: 

"Duplicate domain name specified, ' argvti] ... 
(char •) NOLL) ; » i*J- 

retum TCL_ERROR; 
} 

SetHashValue (entryPtr, DomNumber) ; 

DStringPree (fiDomName) / 

return TCL_OK; 

} 



/• 



SecretsCmd 



* A call to this routine, builds kid to secrets table 

* Results : 
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* None , 
* 

* Side effects: 

* Secrets are stored. 
* 

* . ^ 

*/ 

static int SecretsCmd (ClientData clientDate. Tcl_lnterp *interp, 
int argc, char **argv> 

{ 

int newKid,newKeylD; 

HashEntry *entryPtrKid = NULL, *entryPtrKeyID = NULL; 
int Kid; 

DString *dsptrKid; 



if (argc i » 4) 
{ 

Tcl_AppendResult{interp, argv[0] , " directive: wrong number of " 

"arguments, should be \"4\" 

(char *) NULL) ; 
return TCL_ERROR; 
} 

if (sscanf (argv(2] , "%d", &Kid) 1 = i) 
{ 

Tcl_AppendResult (interp, argrv[0] , 

" directive: KeylD must be an integer", 
value found was argv[2] , 

(char *) NULL) ; 
return TCL_ERROR; 



entryPtrKid « CreateHashEntry (&Ti eke tServerData. Secret sKid, (void *) Kid, &n 
if (strlen(argv[l] ) ) 

entryPtrKeylD = CreateHashEntry (&TicketServerData . KeylD, (void ♦) argv[l] , 
if ((newKid 0 | | ( (newKeylD == o) && strlen (argv [1] ) ) ) 
{ 

Tcl_AppendResult (interp, argv [0] , 

" directive: Duplicate Secret specified for KeylD 

argvtl] , 

(char *) NULL) ; 
return TCL_ERROR; 
} 

if (strlen (argv [1] ) ) 
{ 

dsptrKid « (DString *) malloc (sizeof (DString) ) ; 
DStringlnit (dsptrKid) ; 
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DStringAppend(dsptrKid, ar^ta] , -i) . 

SetHashValue(entryPtrKici, dsptrKid) ; 

SetHashValuefentryPtrKeylD, Kid); 
return TCL_OK; 

} 



TICKET_Initialize 



* 



- can. ..1 ... . ^ ^ ^^^^^^^^^ ^^^^^^ ^^^^^ 

* Results : 

* None. 



Side effects: 



♦ 
♦ 



commands added to the region interpreter 
SID url catcher declared. 



/ 



InitHashTableC&TicketServerData Secret«KiH « 

/* initialize Server ticket data */ 
DStringialt ( WicJcetGlobalData (AuthServer ) ) - 
DStringinit (WioketGlohalData (TicketExpHandler) ) • 
OStrxnglnit (^TicketGlobalData (TicketASHandler 
TxcketGlobalData(PreeArea) .q 
TicketGlobalData (EnableLocalAuth) " ' 

TioketGlobalOata (CurrentSecret) 
TicketGlobalData (EnableSid) 
TicketGlobalData (EnableTicket) 

Ti oketGlobalData (EnableSidEater ) 
TicketGlobalData (LocalAuthEjqj) 

/♦ ticket event counters */ 



= 0 



- 60*30; 
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TicketGlobalData(CountTotalUrl) = o 

TicketGlobalData(CountSidUrl) ^ q 

TicJcetGlobalData(Count:ValidSid) „ o 

TicketGlobalData (CountExpSid) = o 

TicketGlobalData(CountlnvalidSid) = o 

TicJcetGlobalData(Count:CrossDomain) = o 

Tic]cetGlobalData(CountLocalredirects) = o 

TicketGlobalDataCCountRemoteRedirects) = o 

Ticke tGlobalDat a ( CountNoRedirect s ) - o 

TicketGlobalData(CountDiscardedSidUrl) = o 



DomainNameCmd , 



Secrets Cmd, 



/* Ticket related Confi^ commands ♦/ 
Tcl_CreateContmand ( interp , "Domain" , 

(ClientData) serverPtr, NUIiL) ; 
Tcl_CreateConimand( interp, "Secrets", 

(ClientData) serverPtr, NULL) ; 
Tcl_CreateCommand ( interp , "AuthenticationServer " , CmdStringValue , 

(ClientData) &Ticke tGlobalDat a (AuthServer) , NXJLL) ; 
Tcl_CreateCommand( interp, "TicketExpirationHandler" , CSndStringValue , 

(ClientData) &TicketGlobalData(TicketExpHandler) , NDLL) ; 
Tcl_CreateCoramand( interp, "TicketAddressHandler" , CmdStringValue, 

(ClientData) &TicketGlobalData(TicketAdrHandler) , NULL) ; 
Tcl^CreateCommand ( interp , "FreeDomain" , CmdIntValue , 

(ClientData) &TicketGlobalData (FreeArea) , NULL); 
Tcl_CreateCommand( interp, ."EnableSidEater" , CmdIntValue, 

(ClientData) &TicketGlobalData{Encd3leSidEater) , NOLL) ; 
*r<^2._CreateCommand (interp, "EnableSid" , CmdIntValue , 

(ClientData) &TicketGlobalData (EnableSid) , NULL) ; 
Tcl_CreateCommand (interp, "EnableTicket - , CmdIntValue , 

(ClientData) &TicketGlobalData (EnableTicket) , NULL) ; 
Tcl__CreateCoramand (interp, "EnableLocalAuth", CmdIntValue, 

(ClientData) &Ti eke tGlobalDat a (EnableLocalAuth) , NULL) ; 
Tcl_Create Command (interp, " CurrentSecret " , CmdIntValue , 

(ClientData) &TicketGlobalData (CurrentSecret ) , NULL) ; 
Tcl_CreateCommand ( interp , "LocalAuthExp " , CmdIntValue , 

(ClientData) StTi eke tGlobalDat a (LocalAuthExp) , NULL) ; 



HT_AddMounthandler (serverPtr, (ClientData) NULL, TICKET_DebugHooks, 
"/omiserver* , NUIiL); 



return HT_OK; 

} 



/* 

* 
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* TICKET^Shutdown 

; c.n. .„ ^^^^^ ^^^^ ^^^^^ 

* Results : 

* None. 
* 

* Side effects: 

* Memory freed 



*/ - 

void TICKET.Shutdown (HTTP_Server *serverPtr) 

HashEntry * entry Ptr; 
HashSearch search; 
DString *dstring; 

DStriagPree(«cTicketGlobalData(AuthServer) ) • 
DStr«gPree '-TicicetOlobalDataCTicketExpHar^ler, , • 



dstring . GetHaahValue (entryPtr) ; 
DStringFreetdstring) ; 
free (dstring) ; 

entryPtr . NextHashBntry&search) ; 

DeleteHashTableUTicketServerData.fiecretsKid). 
DeleteHashtable ( tTlctetServerData . KeyiD) • ' 
DeleteHaehTable (^TlcketServerData .Domains) ; 

/• 



* 



* TICKET_AddRegion Commands - 

* 

* Results: 



None. 
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* Side effects : 

Commands added to the region interpreter. 



*/ 

void TICKET_AddRegion Commands (HTTP_Request *reqPtr, Tcl_Interp *interp) 

Tcl_Creat€Command<interp, "RequireSID" , TICKET_RequireSidCmd, 

(ClientData) reqPtr, NULL) ; 
Tcl^CreateCommand ( interp , "RequireTicket " , TICKET_RequireTicketCmd, 

(ClientData) reqPtr, NULL) ; 

} 



« - 



* TlCKET_GetCGIVariables 

* Add TICKET CGI variables to the CGI variable table. 

* Results: 

None . 

* 

* Side effects: 

Extends the CGI variable hash table. 



void TICKET GetCGIVariables {HTTP_Request *req) 

{ 

TICKET_Request ♦ticketPtr = (TICKET_Request *) 
HT_GetReqExtData (req . Tickets 



/* 

* If there's no extension data, then we're not doing a ticket. Just 



return 



if (ticketPtr nuxjJ) 
return) \; 
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if (DStringLength(&ticketPtr->rawUrl) . » o) 

HT_AddCGIParaineter (req, "TICKET hrt » r.r.^ • 
>rawUrl), FA riCKET_DRL-. DStrxngValueC&ticketPtr- 

if (DStringI.ength (&ticketPtr->sid) != o) 

HT_AddCGIParaineter{reg, "TICITpt STr.. r^^^ ■ 
>sid), FALSE TICKET_S1D-, DStrxngValue (iticketPtr- 

if (DStringI*ngth(&ticketPtr->field8) .= o) 
>fields). .TXCKKT.FXBXns^ DStringValue (.tlcketPtr- 

if (DStringl,ength(&ticket:Ptr->8lgnature) !- o) 
HT-AddCGlParameter {re<j. "TlcirPT eTra»n.r«... 

>signa 

_c>i^TORE . DStringValue(&ticketPtr. 



*TICKET_GetUrl 
* 

* Return the orignal xirl (with sid} 

* Results: 

* The DRL. 
♦ 

* Side effects: 

None . 

* 

*/ " "'" 

char Y^«^^T-°«tOrl(HTTP_Reguest *regPtr) 
TlCKET_Request *ticketPtr; 



ticketPtr - (TICKET_Request *) 

(DStrxngLength(&ticketPtr->rawUrl) «- o)) 
return DStringValue ( ticket Ptr->rawDrl ) ; 



else 

return DStringValue (&reqPtr->url) 



TICKET_ConfigCheck 

Perform late configuration checks 
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* Results : 



♦ Side effects: 

Possible message loged/printed, and program exit'd. 



* 

*/ 

void TICKET_Con£igCheck ( ) 



{ 

HashEntry *entryPtr; 
int kid; 

if ( (TicketGlobalData(EnableSid) & -Oxl) o) 
{ 

IiogMessage(LOG_ERR, "EnableSid must be 0 or 1") ; 

exit (0) ; 

) 

if ( ! (TicketGlobalData (EnableSid) ) ) return; 

kid - TicketGlobalData (CurrentSecret) ; 
if (kid && kid_mask) !«= kid) 
{ 

LogMessage (LOG-ERR; "CurrentSecret %d is invalid", kid); 
exit (0) ; 

} 

entryPtr = FindHashEntry (&Ti eke t Serve rDat a .Secrets Kid, (void *) kid); 

if (entryPtr == NULL) 
{ 

LogMessage (LOG_ERR) , "No secret defined for CurrentSecret %d", kid; 
exit(O); 

if ( (TicketGlobalData (FreeArea) & -0x255) '» o) 
{ 

LogMessage (LOG_ERR, "FreeArea must be between 0 and 255"); 

exit(O); 

} 

if ( (TicketGlobalData (EnableSidTicket) & -0x1) t= o) 
{ 

LogMessage (LOG_ERR, "EnableSidTicket must be O or i») ; 
exit (0); 

} 
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if ((TicketGlobalData{EiiableTicket) & -oxl) !- o) ; 

LogMessage(LOG_ERR. -EnableTicket must be 0 or 1-) • 
exit(O); 

} 

if ((ricketGlobalData(EnableLocalAuth) & -oxl) -= o) 



LogMes8age(LOG_ERR. -EaablLocalAuth must be 0 or 1") - 
exit (0); 



) 

) 



/* 



• TICKET_DebugHooke 



Check for debug hooks and execute if found. 



* Results: 

* None . 
* 

* Side Effects: 

* None . 



*/ - 

tatic void TlCKET_DebugHooks(ClientData clientData, char -suffix. 
^ HTTP_Request "reqPtr) 

if |strcir^ (suffix, VticJcet status") o= o) 

DunqpStatus (regPtr) ; 
^^^PinishRequest (reqPtr) ; 
return; 

} 

^Jlnll^i'T'T' ^'-^ to poorly formed url-, ; 

HT_FinisnRequest (regPtr) ; f ^ 

return; 
) 



Dumpstatus — 

Dump the server's ticket stat' 
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* Results: 

* None . 
* 

* Side effects : 

* None . 



*/ 

#define BtJPSIZE 1024 

static void DumpStatus (HTTP_Reguest *reqPtr) 
{ 

HTTP_Server *serverPtr = reqPtr->serverPtr; 
char tmp [BUFSIZE] , timeStr [BUFSIZE] ; 
struct utsname sysinfo; 
time_t uptime; 
int hours; 

HTTP_BeginHeader(reqPtr, "20 0 OK) ; 

HTTP_SendHeader(reqPtr, « Content- type : text/html", NOLL); 
HTTP_EndHeader ( reqPtr ) ; 

HTTP_Send(reqPtr, "< title >WebServer Ticket Status</title>" , 

"<hl>WebServer Ticket Status</hl> : , NULL); 

HTTP_Send(reqPtr, ''<p><hr»<p><h2>Ticket Log</h2>«, "<p><pre>\n% NULL); 

sprintf (tmp, " <b>%s: </b> %d\n", "Number of access «, Ticket 

HTTP_Send(reqPtr, tmp, NULL) ; 

sprintf (tmp, " <b>%s: </b> %d\n'', "Number of SID URL's Ticket 
HTTP_Send ( reqPtr , tmp , NOLL) ; 

sprintf (trap, " <b>%s: </b> %d\n:, "Number of Valid SID's Ticket 
HTTP) Send (reqPtr, tmp, NULL); 

sprintf (tmp, " <b>%s: </b> %d\n:, "Number of Expired SID' s Ticket 
HTTP) Send (reqPtr, tmp, NULL); 

sprintf (tntp, " <b>%s: </b> %d\n:, "Number of Invalid SID's Ticket 
HTTP) Send (reqPtr, tmp, NULL); 

sprintf (tmp, " <b>%s: </b> *d\n:, "Nximber of XDomain accesses ", Ticket 
HTTP) Send (reqPtr, tmp, NULL); 

sprintf (tmp, " <b>%s: </b> %d\n:, "Number of Local Redirects ", Ticket 
HTTP ) Send ( reqPtr , tmp , NULL) ; 

sprintf (tmp, " <b>%s: </b> %d\n:, "Number of Remote Redirects ", Ticket 
HTTP) Send (reqPtr, tmp, NULL) ; 

sprintf (tmp, " <b>%s: </b> %d\n: , "Number of No Auth servers Ticket 

HTTP_Send (reqPtr, tmp, "</pre>" , NULL) ; 

uptime = time (NULL) = eerverPtr- >started; 
uname (&sysinf o) ; 
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localtame (serverPtr->started) ) ; ' 

springf (t^p. -Server runing on <d>%s./b> 

Since %s <p>- r ^''^ I'ssn «P \ 

HrrP_Send(regPtr, 4, ^^'--^'^->— er_port, tin.eStr, ; 

sprintf(t„^. - <b>»u"*>er Of connections: 

serverPtr->nuniConnect8) - 
HTTP_Send{reqPtr. tmp. -<p><pre>\„- . 

-P.SendC,e.Ptr, t^. .</pre>^pT ^^^^ 
hours = max (uptime / 3600 i) . 

-Printf (tmp. -This server is averaging <b>*a</b 

serverPtr->„umRequests/LuJs) ""'"'^'^ hour.<p>.. 

. HTTP_send (reqPtr . tmp . ndlx.) ; ' 

I>uiipRusage (regPtr) ; 
/* ^:>unipConnections(regPtr); */ 

DNS_Dun5)Stats (reqPtr) ; 
reqPtr->done « TRUE/ 



} 

#undef BUFSIZE 
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5 
10 

2. 

15 3. 
4. 

20 
25 



is claimed is: 

A me'thod of processing service requests from a client: 
to a seirver system through a network comprising: 

forwarding a service request from the client to 
the server system; 

returning a session identifier from the server 
system to the client; and 

appending the session identifier to the request 
and subsequent service requests from the client to the 
server system within a session of requests. 

A method as claimed in Claim 1 wherein the server 
system tracks an access history of sequences of 
service requests within the session of requests. 

A method as claimed in Claim 2 wherein the server 
system tracks the access history to determine service 
requests leading to a purchase made within the session 
of requests. 

A method as claimed in Claim 1 wherein the server 
system counts requests to particular services 
exclusive of repeated requests from a common client. 

A method as claimed in Claim 1 wherein the server 
system maintains a database relating customer 
information to access patterns, the information 
including customer demographics. 
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session identifier- -^"er and the 

entifaer is protected from forgery. 

A method as claimed in Clai» 6 wherein i-K 
system co„prise3 plural serversl^irur- 
authentication server which IZlZl tl^r 
identifiers fr^^ ^ • ^vioes session 

*or serv.ce re,^e.ts to multiple servers. 

A .ethod as Claimed 1„ claim 7 «,ereln- 
serve: ZT.TT^^IT^^ "^'^^ ' 

«ssio„ identifier and only s^i"r " 
Win, a valid session ide^iX" an^ l"" " 
service revest has no valid iZUTj 
the first server redirects fh« 

r.^«t .ro^„ the client to t.e a:::::ritt 07:::^. 

"entifier to ^ appended L Z T^llZ^^ 

the first server; service request to 

the client forwards the servi^^ 
appended with the session identUilr to I'T"^ 
server; and ««nT:irier to the first 

"e,ti„.r\^\l"\ns"::--''-'"^"s the session 
Client; and ""J"'.! to the 

.u.s.:::,t"srioT:.te.t^ - 
- serviced „itno„t .1.:,: 11:::,:^^ '''''' 

A method as claimed in Clain,« ^ 

session identifier .ncllTa\\:: ^''^ 
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A method as claimed in Claims 1 or 7 wherein the 
session identifier includes an expiration time for the 
session. 

A method as claimed in Claim 7 wherein the session 
identifier provides access to a protected domain to 
which the session has access authorization. 

A method as claimed in Claim 11 wherein the session 
identifier is modified for access to a different 
protected domain. 

A method as claimed in Claim 7 wherein the session 
identifier provides a key identifier for key 
management . 

A method as claimed in Claims 1 or 7 wherein the 
server system records information from the session 
identifier in a transaction log in the server system. 

A method as claimed in Claims 1 or 7 wherein 
communications between the client and server system 
are according to hypertext transfer protocol and the 
session identifier is appended as part of a path name 
in a uniform resource locator. 

A method as claimed in Claim 15 wherein the client 
modifies the path name of a current uniform resource 
locator using relative addressing and retains the 
session identifier portion of the path name unmodified 
for successive requests in the session. 
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A method as claimed in claim l or 7 fun.H 
excluding requests made to infom,J- ~»Prising 
Within a defined period o. tLe " ^^'^"^ 

* toTre^r: s^"::r:L' ^^^^^^ ^ — 

-om the Client through "^hr ne^.r""^"^ 

appending a session identifier which , . 
user identification, to the request,: and ' ^ 

aoeumr iT- ttiirrr :a-r 

- user identification of L^^^t^^r 

A »ethod Of processing service request for h 
received from a clie«4. . ^«<iuest for a document 

<Jocu»ent has bLn K ' ""^"""^ ''^i-** the 
ent has been purchased by a user comprisina- 
responding to a reouest . ^ ««Prasxng. 
from a client throuoh <*°°u»ent received 
ciient through the network in which th<» 
^°^^^"^JL-A-n_PurcJu^^^^ 

requesTrnT' --ori.ation identifier to the 

returning the requested document if the 
authorization identifier indicates that 
authorized to access the doclent '"^^ ''^^'^ 

A method as claimed in Claim is, wherein th. 

i=r winch IS appended to the request. 

A method Of prooessm, service requests tro„ , • 

appending a user identifier to the request; 



20. 

25 



21, 
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5 22, 
23. 

10 

15 24. 

20 

25 

f 

25. 
26. 

30 



returning the requested document to the client, 

and; 

charging the user identified in the identifier 
for access to the document. 

A method as claimed in Claim 21, wherein a user 
identifier is encoded within a session identifier 
which is appended to the request. 

A method of processing service requests from a client 
to a sejTver system through a network comprising: 

forwarding a service request from the client to 
the server system; and 

appending a session identifier to the request and 
subsequent service requests from the client to the 
server system within a session of requests. 

An information system on a network comprising: 

means for receiving service requests from clients 

and for determining whether a service request includes 

a session identifier; 

means for providing the session identifier in 

response to an initial service request in a session of 

requests; and 

means for servicing service recjuests from a 

client which include the session identifier, the 

subsequent service request being processed in the 

session. 

An information system as claimed in Claim 24 wherein 
the means for providing the session identifier is in a 
server system which services the requests. 

An information system as claimed in Claim 23 further 
comprising an authorization routine for authorizing 
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forgery. """" identifier fro. 



27. 



28, 



10 29, 



fro. the session laentlfier information 

An infomation system' is claimea in clai» ,^ , 
comprising means for tracing access hLto^ T 
=eguences o. service requests „it.in the sITsron. 

An information system as claimed in cial», ,^ . 
Client. repeated requests from a common 



30. 

15 



An information system as claimed in Claim ^ 
comprising a database relating ^ farther 
access patterns t^! • ^ ="«tomer information to 

c^emographiL ' ^^^-ation including customer 



31. 

20 



An information system as claimed in Claim k • 

communications between the «n \ wherexn 

uBwween tne client and server exre^-^. 

are according to hyoertevi- * server system 

session "entWrn:::n:ra"^r^^^^^^^^^^^ - 

in a uniform resource locator. 
^a. An information server on a networX comprising: 

pages ::::i::: fr"'°"""' *° « 

returnlnrtH ' "-'"o" by 

returning the reguested hypertext pages to the client- 

fro. ::z iTth^T"""' '° 

om links m the hypertext pages; and 
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means for tracking the further requests derived 
from a particular hypertext page* 

33. An information server as claimed in Claim 32 wherein 
the requests include a common session identifier and 
5 the server tracks requests within a session of 

requests • 

34 • An information server as claimed in Claim 32 further 
comprising a data base relating customer demographics 
to access patterns • 

10 35. A method of providing access to information pages from 
a client to a server system through a network 
comprising: 

providing a telephone number at the client; 

mapping the telephone number to a target page 
15 identifier using a translation database; 

requesting information described by the page 
identifier from the server system; and 

displaying a page identified by the page 
identifier at the client. 

20 36. A method of providing access to information pagres from 
a client to a server system through a network 
comprising: 

providing a descriptor at the clients- 
mapping the descriptor to a target page 
25 identifier using a translation databases- 

requesting at the client information described by 
the page identifier from the server system without 
further user action; and 

displaying a page identified by the page 
30 identifier at the client. 
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37. A method as claimed in claims 35 or 36 wherein t:he 
translation database resides in the server system 
Which returns a uniform resource loctor in a REDIRECT 
cononand to the client to cause the client to request 
the information using the uniform resource locator. 

38. A method as claimed in Claim 36 wherein the descriptor 
comprises a telephone number. 

39. A method as claimed* in oia-im •>£ . ^ 

^j-aimea xn Claim 36 wherein the descriptor 

comprises a descriptive term. 

10 40. A method as claimed in Claim 39 wherein the term 
includes a company name. 

41. A method as claimed in Claim 39 wherein the term 
includes a product name. 



42. 

15 

43. 



44 



A method as claimed in Claim 39 wherein the term is 
Identified by phonetic mapping. 

A method as claimed in Claims 35 or 38 wherein the 
target page identifier describes a controlled page. 

A method as claimed in Claims 35 or 36 wherein the 
target page identifier is a uniform resource locator. 
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